WordPress: How To Stop Hacker & Creepy Crawler Spam Attacks

Block Hacker & Spammer Attacks

Recently I discovered how to setup an enhanced Real-Time hacker and spammer security solution, and it’s totally Free. It creates a “trap” for malicious hackers, spiders, bots and crawlers.

If you want to take a huge byte out of resource robbing creepy crawler spam bots and human hackers alike, this article will provide easy instructions about how you can setup this security trap to guard against attackers on any WordPress site.

See Real-Time blocking in action… It really works!

Did You Know?

These monsters are responsible for a huge number of attacks on your site as well as mass Spam User Registrations!

    What It Can Do

  • Block and lockout malicious crawlers, hackers and bots.
  • Prevent auto bots from posting comments if you require registration.
  • Stop automated bots from making posts.
  • Block / Lockout malicious human attackers and hackers.
  • Prevent re-registration of deleted spam users.
  • …and much more!

Effective Security Against IP Rotation Spoofing And Forging

While nothing can stop, block or lockout 100% of hackers and spammers, this security combo trap is able to lock-out a large percentage of creeps and humans having bad intent. Even those who are using rotating IP’s, spoofed IP’s and even visitors using forged IP addresses. The IP is not locked out permanently but long enough for most hacksters and spam-misters to give up and move-on to another potential victim.

I’m not trying to sell or peddle anything here. This trap is a combined solution I put together that helped me immensely so I thought I would share it with others. It immediately started blocking malicious spiders, crawlers, potential hackers, locked-out deleted spam users and bad bots before they could do damage, login and/or re-register.

The Epidemic

Even if you just have one WordPress website, sooner rather than later, your site will become prey for countless human hackers and the never ending streaming plague of spamming hacking crawling spider bots; the scourge of the web.

You see, whether or not you have registration and/or comments shut down the creepy crawler spam bots continue their spider-like activity of trying to hack, register, leave comments, do trackbacks and crawl your site, page after page, at lightning speed looking for vulnerable URL’s and user names to exploit. If they only find one user name they assume it belongs to the administrator or a high level user of the site and then use it for an attempted log-in with the belief that if successful they can carry out their missions unobstructed. Otherwise they will try the username “admin” and any number of user names associated with content found on your site. If you have this trap setup properly then that malicious crawler or human will immediately get blocked. Legitimate crawlers and bots are never programmed to do this.

Crawler-bots can and will automatically register many thousands of users. Then they visit often dropping spam comments and posting poorly written spun content until they overload and break your site.

Unless you have a more powerful than average hosting plan it is likely they are already slowing down your site by stealing valuable server resources of bandwidth, CPU, ram memory and the number of concurrent connections your hosting account can support.

These bots can cause abnormally high page load times and trigger temporary denial of service to legitimate visitors.

Unfortunately, no single solution seems to work very well and enterprise level solutions are expensive, making them prohibitive for the vast majority of owner-webmasters.

Invisible and Silent Criminals

One of the problems we face when trying to stop this plague of humans and bots is we don’t see them coming and we don’t know who they are before or after the damage is already done.

However, with the right type of security plugins we can identify a small number of them before and a much larger number after. But this really falls short and takes a lot of hands-on personal time on our part to monitor, analyze and manage these free security solutions in helping to stop these criminals.

Unfortunately most of our efforts will only guard against possible future visits after the initial damage is already done. We become forever trapped in a cycle of personal time wasting involvement if we are to guard against future bots and human attackers.

The Admin Trap

Let’s set an automatic trap that catches a large number of both humans and bots in the act… before they do their damage!

This particular trap is based on the premise that most ill intentioned humans and crawlers test for the ‘admin’ user. Most wicked human spammer-hackers just can’t resist doing this and it seems that the majority of nasty crawlers are programmed for it. These crawlers are also responsible for bulk spam registrations and automated spam bot user log-ins. So when you block and kill a spider you also block a bunch of future spam registrations.

Using free WordPress security software plugins and painstaking observation I learned that attempting to login as administrator is one of their fist malicious activities when landing on a website. Almost all will try to login to WordPress sites as the administrator user, which by default installs the user “admin” and/or using the administrator’s “nickname”.

We can catch and stop a large number of these malicious visitors before they do damage by capturing and using their IP address against them using some specific security action rules found I found in the Wordfence Security plugin for WordPress combined with changing the name of the WordPress default administrator user. Then I made sure to give the new administrator user a nickname. A recommended security practice is to make sure all users create and use public nicknames rather than their actual user names.

Steps To Set-Up The ‘Admin’ Security Trap

    Step 1

  • Install the free or pro version of the Wordfence Security plugin.
    • Go to Wordfence options. Most of the best action options are pre-selected by default but you must manually select several additional optional actions as part of creating the “Admin Trap”.
    • You might want to turn-off automatic scanning because it can frequently use a lot of server resources while in action.
    • Adjust the “Firewall Rules” as you feel is best for your site.
    • Under “Login Security Options”
      1. 1. Make sure you limit login attempts. I am using 3 login failures and 2 password recovery attempts.
        2. I am counting failures over 30 minutes because I want as many as possible deleted spammers and creepy bot users to get locked out next time the crawler or human spammer comes back.
        3. IMPORTANT: Select a long lockout period. I am using the max of 60 days.
        4. IMPORTANT: Put a check in the box for “Immediately lock out invalid usernames”.

      **Note: Items 3 and 4 above are critical to creating the trap.

    Step 2

  • Change (rename) the admin user to whatever works for you. To make it easy to remember I just added a couple of initials to the original admin name. Caution, do not change the password at the same time. The administrator username “admin” is located in the WordPress “wp_users” database table for your specific site. You can easily access and edit it directly using, “phpMyAdmin”. This database administration tool is found in most hosting account management panels.
  • Alternately you can install a “Rename Admin” plugin to accomplish the task. I have used both methods. After the change you can delete the plugin if desired. The recent plugin I used for this had not been tested with WordPress 4.0 but it worked just fine.
  • Important!… log into your WP admin area as administrator using your new administrator username. Go to “Your Profile”. Give yourself a public nickname (alias or pen name) that is different than your new admin user name. This is part of the sucker trap. When any user tries using the nickname to login they will instantly get blocked and locked-out.

From this moment on when the hackers and spammers, humans and bots, visit your site(s) this security software configuration will catch, stop and automatically block them for relatively long periods of time.

One Last Security Tip

So immediately prune / delete your spam and zombie users (users without approved posts or comments) as well as spam comment users. Also, optionally close user registrations and/or comments. Spammers and auto bot registered users generally don’t use or have nicknames associated with their profile. Many of them also have impractical to use or remember email address.

With this security trap you can not only stop, block and deter crawlers from future crawls and logins, you can also stop, block and deter returning human spammers also. It works because anyone trying to login using a non-existent user name automatically gets blocked and locked out based on their IP address, meaning they cannot even re-register for up to 60 days – long enough that they may go pick on some other website and scratch yours off their list.

Now you have it – “The Hacker Spammer Admin Trap”.

Need an extra payroll day?

Continue Reading

Necessary Criteria Of Epilators In The USA

So for these situations you can use a depilatory gel which contain 100 % natural substances to remove locks and keep epidermis moisturized and sleek for up to a 6-week period. Obviously, it is best to use the epilator in an environment where you are relaxed and your skin is clean. The more up-to-date and uncomplicated technique of eradicating unwelcome Hair is usually by laser. The explanation for this is that with waxing you eliminate hair from the root and so it will consider 3 to 6 weeks to reappear. Male hair removal is starting to become fashionable in recent years and countless guys are seeking alternative strategies to liberate their bodies of the undesirable hair.

Apply It Anywhere!

Body-Laser hair removal can be applied virtually anywhere on the body and is ideal for individuals with light skin and thick dark hair but can also be beneficial for those who do not meet this exact demographic. Although there are many diverse methods for getting rid of unnecessary hair, most of them have one or more drawbacks. Some women opt to do it at a salon or spa; however, some women are a bit more shy or humiliated to have somebody do the waxing for them so they opt for bikini waxing at home. Pen and ink was usually used to draw on the finished papyrus. Warmed wax, normally beeswax, is applied in a thin layer over the entire genital region;.

Barbara Galagusz owns and operates Skin Trade, a waxing and facials boutique. Also not sharing personal items like bath towels and sponges will help prevent infection. They take a metal probe and insert it into a single follicle. Hot waxing is a popular method but it should be done carefully to avoid causing undue injuries that are preventable. The site contains a list of the most professional salons of almost every city.

Here, the hair is removed in a pluck and is removed rather deeply. A Brazilian wax removes all the hair from your pubic region, with the common exception of a small strip of hair below your belly button. There is also a possibility of losing unwanted hair permanently over time. This produces a cycle of gripping, pulling and then discarding the hair. Most of the women are satisfied after the treatment.

When the bump is scratched off, there may be a coil of ingrown hair within. And there exist quite a few spectacular shavers to select from. Since you loved this informative article and you wish to receive more info with regards to kindly visit our own web site. After huge success of its services among females, we offered full body wax for men even. Getting into a waxing regimen will not only help you save money in the long-run, but will also keep your skin healthy and smooth all year long. The Role cycle prepares her for survival in the culture and society in which she is raised.

Continue Reading

Ford Fiesta 2012 Side Doors Won’t Latch Shut Or Stay Closed

The problem, or I should say ‘the jam’ as in door jamb, is that both side rear passenger doors on my 2012 Ford Fiesta are not working on the close. The car doors won’t stay closed or stay shut. When you try shutting either door it just bounces back out a little. When I try it I get the same result. Neither door will latch closed.

This is no ordinary open and shut predicament. I tried an easy fix of lifting the door handle while rotating the latch. That trick doesn’t work for this car’s latching dilemma as the latches aren’t stuck in the wrong position. As you can clearly see in the photo below, upon breaking they actually remain in the correct rotational position to latch when the door is closed. The latch just rotates freely. Lifting and lowering the outside and/or inside door handle has absolutely no affect on the latch. It seems the latch assembly is broken internally.

It’s scary to think that the latches might have just suddenly released the doors to open while carrying passengers in the back seats!

As a public service I have decided to chronicle and publish for public record this ongoing saga as the story of the 2 broken door latches unfolds.

Photo Of 2012 Malfunctioning Ford Fiesta Door Latch In Correct Position To Close

2012 Ford Fiesta Malfunctioning Door Latch In Correct Position To Close

Is this a Ford Fiesta Recall waiting to happen?

Has anyone out there had 2 door latches fail on a new car? Only 35,772 miles on my 2012 Fiesta when both rear passenger side door latches failed within 12 hours of each other. Is both doors failing at the same time just a coincidence? I think not!

My car developed a pair of double D’s overnight.
Double D-fective flapping doors that is!

My Ford Fiesta safety issue case #CAS-4651084-H7G4M8

My Fiesta has never been involved in an accident, no body damage, no evidence of attempted break-ins and no apparent reason to cause 1, let alone both, rear passenger side door latches to malfunction and prevent closing of the rear side doors. And, absolutely no warning or indication of any looming or pending problem with the operation of either door nor my fingers, hands, wrists or arms… although I do get a bout-of-gout in my knee occasionally. I just opened each door normally to find it broken upon shutting. What I find extremely strange, and at this time still unexplained by anyone, is that both doors failed within 12 hours of each other in exactly the same manor. Seems like too much to be a coincidence, doesn’t it. There must be some sort of a connection. So what’s the connection? Do these 2 doors share a symbiotic relationship where one cannot go on without the other? Do the electric door locks associated with the latches have something to do with it? What is the “real” cause of the latches failing? What else might be or go wrong with the doors???

The passenger side rear door is almost never used since I rarely carry more than one hitchhiker :-) at a time. That door has been opened and closed maybe 30 times or less since I purchased the car… and I never pick up hitchhikers – really. Well, not since the doors broke anyway :-). If you can’t open and close a car door many hundreds or even thousands of times perhaps you should have your hand checked for tendinitis, or just maybe the door is faulty. In all my years I have never experienced any car, my car or any other car with even one faulty door latch – never! It’s always been my hand, ha-ha.

A Serious Safety Hazard

It seems to me that a failing door latch represents a significant public safety hazard. How many Ford Fiesta’s have this safety issue? How many hands are getting tendinitis trying to close those doors? What if the door latch had failed while I was in motion? What if the door swung out and hit someone, something or another vehicle while I was making a turn? What if one of my grand kids fell out of my back seat because the door latch failed and then swung open? What if something tumbled out onto the roadway and caused someone to have an accident or just damaged their vehicle?

Door Latches Should Be Fail Safe!

A door that will close and remain securely closed is on my short list of things I would expect to work on each and every car no matter what!

Rear Side Door Latch Failure #1

The first door malfunctioned and failed to close in a parking lot after placing some groceries in the back behind the driver’s seat on Wednesday June 25, 2014 at approximately 10:30 PM. I had to drive home with the driver side rear passenger door dangerously free to swing wildly.

Rear Side Door Latch Failure #2

The passenger side rear seat door failed to close the next morning after placing a travel bag into the back seat area around 9:00 AM on Thursday June 26th. It was my daughter’s birthday and I was on my way to Torrance California to celebrate with her. I figured I would go see a Ford dealer once I got to Torrance, which I did. So I tied the 2 doors closed from the inside and set off on the 300 mile dive to join my daughter and other family members for her birthday.

The following day Friday June 27th 2014 I visited the Ford Dealership on Pacific Coast Highway in Torrance, AutoNation Ford. I must say that I was treated exceptionally well but was informed that since my car mileage was now 36,072 my rear door repairs would not be under warranty unless Ford Motor Company made an exception. Inferring that since I drove 300 miles to Torrance for my daughter’s birthday I would lose out on warranty coverage because of the extra 72 miles above the 36,000 mile warranty. The dealer did kindly take the car into the service area to determine exactly what would be the extent of the needed repairs. They advised me that 2 new complete door latch assemblies would be required and that the closest parts were in Sacramento. I explained that I would have to take my car to a dealer near my home as I could not stay for 5 to 7 days to complete the repair.

The Pending Solution?

This morning (07/01/2014) I called Ford Motor Company at (800) 392-3673 and talked with a nice customer care service representative (Steven) who created a service / safety review report Case #CAS-4651084-H7G4M8. I was advised that a copy of the report would also be forwarded to the National Highway Traffic Safety Administration. Steven told me that they would look into it and my best course of action now would be to work with a local Authorized Ford Dealer as they are the ones in a position to work with Ford to resolve this. I contacted Colorado River Ford at (928) 757-3131 as per Steven’s suggestion. I initially spoke with Charles at Colorado River Ford. I am currently waiting for Colorado River Ford to get back to me with information as to what they are able to work out with Ford Motor Company.

07-03-2012: Waiting.

07-09-2014: No communication from Ford Motor Company or Colorado River Ford

07-09-2014: Called Ford Motor Company and spoke with customer service rep Stephanie. She opened a new case #CAS-4860114-T7N7J2 and has escalated the matter up to a regional supervisor or similar level person. According to Stephanie, the highest level. Was also informed I should expect a call back from Ford Motor Company within 2 days. I also learned that someone from Colorado River Ford did contact Ford Motor Company but did notes do not reflect that they tried to negotiate a warranty repair or advance my claim and nobody from Colorado River Ford advised me that they had indeed contacted Ford. From my perspective it seems like Colorado River Ford just dropped my request for assistance.

Added Note 07-09-2014: Parts to perform the needed repairs are scarce and/or currently not available from Ford dealers or local/regional Ford parts warehouses. This is an indication to me that other Ford Fiesta owners are likely to be experiencing similar issues leading to a run on door latching mechanisms needed to correct my Fiesta’s defect. When I finally do get this resolved I hope the new parts are of better quality than the ones that failed.

07-14-2014: No callback within 2 days as promised. I was promised by Stephanie at Ford Motor Company that a high level Ford case rep would call me within 2 days of opening the new case #CAS-4860114-T7N7J2. Today is the 3rd business day. Thursday and Friday last week are the 2 full days that lapsed without being contacted by Ford.

07-15-2014: I called Ford customer care again since they have taken no action and have not bothered to honor their commitment to contact me to resolve this issue. Today I spoke with Shannon for about an hour. Shannon opened yet a 3rd case #CAS-4889525-R7K7F0. If Ford was as good at contacting their customers as promised to resolve issues they could cut down on creating case numbers and composing lengthy reports. This time I was promised a callback in 1 day by Shannon. So on or before the end of 07-16-2014 I might get a call from “Leroy” my Ford regional manager.

National Backorder No Parts Available

07-15-2014: Today also I learned that the required parts to repair the doors on my Fiesta are on “national backorder”. This information was obtained directly from Ford customer care. The customer care rep actually inquired about the door parts. She conveyed to me that before she could even state the model and year, the parts person said, “if this is for a Fiesta 2012 the door parts (latching mechanisms) are on National Backorder”. More evidence to indicate Ford has a serious problem with defective Fiesta door latches.

07-17-2014: Leroy, the regional Ford manager DID NOT CALL me on 07-16-2014 as promised by Shannon on 07-15-2014.

08-23-2014 The Resolution:
As of last week my doors are repaired after much back and forth between me and Ford. Mostly Leroy was not returning my requests for communication about having my doors repaired under warranty and the fact that the parts were on National backorder. Parts became available about 3 weeks ago now. The result of my effort is that Ford finally agreed to pay for the repair of one(1) door and I had to pay for the other. Leroy claims that in order for the car to be repaired under warranty the repairs must be completed while the mileage is 36,000 miles or less and within 3 years of purchasing the vehicle new, whichever comes first. I was within the 3 years but my mileage was slightly over. However, Ford still kicked in on the repair with their out-of-warranty customer assistance program with the sum of $250 toward the $514 dollar repair cost for both doors.

So the bottom line here is if you need anything repaired on your Ford make sure you get it to an Authorized Ford dealer before the car is out of warranty by even 1 day or 1 mile. Warranty wise it makes no difference where you are when it breaks or the circumstances, if your car is not being repaired at the dealer exactly within the warranty you loose out on full warranty coverage.

I have nothing but high praise for my local dealer (Colorado River Ford) but as far as Ford Motor Company Customer Care is concerned my comments are probably better left to your imagination!

Continue Reading